Talent.com
Senior Information Security Engineer / Vulnerability Manager
Senior Information Security Engineer / Vulnerability ManagerC2 Labs, Inc. • Washington, DC, United States
Senior Information Security Engineer / Vulnerability Manager

Senior Information Security Engineer / Vulnerability Manager

C2 Labs, Inc. • Washington, DC, United States
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Senior Information Security Engineer / Vulnerability Manager

C2 Labs, Inc. – www.c2labs.com

C2 Labs partners with clients on their IT transformation journey via our industry-leading capabilities in full stack development, hyper-automation / DevOps, and cybersecurity compliance. We provide specialized products and services that enable clients to innovate with speed and scale while maintaining a robust and effective security posture. As digital transformation partners, we address the most urgent needs holding back our clients, including proactively addressing cultural change, quantifying risk, automating compliance, and closing critical skill gaps.

Job Duties

As a Senior Information Security Engineer / Vulnerability Manager , you will lead efforts to identify, assess, and mitigate security vulnerabilities across complex enterprise IT environments. Responsibilities include :

Vulnerability & Threat Management

  • Manage enterprise vulnerability management platforms (e.g., Tenable, Qualys, Rapid7) and ensure timely scanning, reporting, and remediation tracking.
  • Perform risk-based analysis of vulnerabilities, develop mitigation plans, and escalate issues requiring urgent remediation.
  • Integrate threat intelligence to prioritize vulnerabilities based on exploitability, industry trends, and business impact.
  • Establish and maintain vulnerability KPIs, metrics, and executive reporting dashboards.

Security Engineering

  • Design, implement, and maintain security controls and safeguards across networks, endpoints, and cloud environments (AWS, Azure, or hybrid).
  • Automate security operations tasks using scripts or tools (Python, PowerShell, Bash, or AWS Lambda).
  • Collaborate with IT and DevOps teams to integrate vulnerability management into CI / CD pipelines and cloud workloads.
  • Conduct regular security assessments, penetration test remediation support, and continuous monitoring activities.

    • Governance, Risk, & Compliance

  • Support compliance with federal frameworks (FedRAMP, NIST SP 800-53, NIST SP 800-171 / CMMC, FISMA, etc.).
  • Document processes, remediation plans, and compliance evidence in alignment with client requirements.
  • Provide recommendations for continuous improvement of security posture and policy enforcement.

    • Collaboration & Leadership

  • Partner with cross-functional teams (IT, Development, Operations, and Compliance) to ensure vulnerabilities are remediated in a timely, risk-based manner.
  • Provide technical leadership and mentorship to junior security engineers and analysts.
  • Participate in client-facing meetings and presentations as a subject matter expert in vulnerability and threat management.

    • Education, Training, Qualifications, and Certifications

  • Required :
  • U.S. Citizenship and ability to obtain / maintain Public Trust clearance
  • Bachelor’s degree in Computer Science, Cybersecurity, or related field OR 5+ years of equivalent hands-on experience
  • Proven experience in vulnerability management, security engineering, or penetration testing
  • Strong knowledge of IT infrastructure, networking, and cloud environments (AWS preferred)
  • Familiarity with security automation, scripting (Python, PowerShell, Bash), and infrastructure-as-code principles
  • Excellent analytical, problem-solving, and communication skills
  • Background check and unannounced drug testing required.
  • This position is onsite in Washington, DC , with occasional travel (up to 25%) for client meetings and work assignments.
  • Preferred :
  • Professional certifications such as CISSP, CISM, OSCP, CEH, Security+, or AWS Security Specialty
  • Experience with compliance frameworks (FedRAMP, NIST 800-53, CMMC)
  • Background in DevSecOps practices, continuous monitoring, and automation

    • EOE STATEMENT :

    We are an equal opportunity employer. All qualified applicants will be considered without discrimination based on race, color, religion, sex, national origin, age, disability, or protected veteran status. Employment offers will be contingent on passing a pre-employment drug screen.

    #J-18808-Ljbffr

    [job_alerts.create_a_job]

    Information Security Engineer • Washington, DC, United States

    [internal_linking.related_jobs]
    Senior Security Engineer

    Senior Security Engineer

    SAIC • Washington, DC, United States
    [job_card.full_time]
    We are seeking a skilled Security Engineer with extensive experience in vulnerability remediation at the operating system (OS) level to join our IT team on-site in Washington, D.The ideal candidate...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Information System Security Engineer (ISSE)

    Information System Security Engineer (ISSE)

    Tla Llc • Washington, DC, United States
    [job_card.full_time]
    TLA is seeking an Information System Security Engineer (ISSE).This is a critical role responsible for designing, developing, implementing, and maintaining secure information systems and networks.Th...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Remote Information Security Engineer : SIEM, EDR & Cloud

    Remote Information Security Engineer : SIEM, EDR & Cloud

    ISACA • Washington, DC, United States
    [filters.remote]
    [job_card.full_time]
    A well-respected law firm in Washington, DC is seeking an experienced Information Security Engineer to enhance its security operations. This role offers the flexibility to work entirely remote or on...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Engagement Manager (Cyber), Public Sector

    Engagement Manager (Cyber), Public Sector

    Scale AI, Inc. • Columbia, MD, United States
    [job_card.full_time]
    Scale AI is at the forefront of the AI revolution, helping the U.AI across national security missions.We're building enterprise-grade generative AI solutions and delivering them into operational us...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Cybersecurity Engineer II

    Cybersecurity Engineer II

    InsideHigherEd • Washington D.C., United States
    [job_card.full_time]
    The Talent Acquisition department hires qualified candidates to fill positions which contribute to the overall strategic success of Howard University. Hiring staff “for fit” makes significant contri...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • Washington, DC, United States
    [job_card.full_time]
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Consulting Solutions Architect, Networking & Security, Federal (VA, DC)

    Consulting Solutions Architect, Networking & Security, Federal (VA, DC)

    Presidio Networked Solutions, LLC • Waldorf, MD, United States
    [job_card.full_time]
    Presidio, Where Teamwork and Innovation Shape the Future.AtPresidio, we're at the forefront of a global technology revolution, transforming industries throughcutting-edge digital solutions and next...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Travel CVOR Tech - $1,522 to $1,687 per week in Bethesda, MD

    Travel CVOR Tech - $1,522 to $1,687 per week in Bethesda, MD

    AlliedTravelCareers • Columbia, Maryland, US
    [job_card.full_time]
    AlliedTravelCareers is working with LRS Healthcare to find a qualified CVOR Tech in Bethesda, Maryland, 20814!.Ready to start your next travel adventure? LRS Healthcare offers a full benefits packa...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Information System Security Manager (ISSM)

    Information System Security Manager (ISSM)

    The Johns Hopkins University Applied Physics Laboratory • Laurel, MD, United States
    [job_card.full_time]
    Do you love solving problems while enabling impactful research to operate securely?.Are you passionate about making meaningful contributions to national security cyber missions?.Do you like collabo...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Sr. Manager - Network Security Engineering & Ops (Remote)

    Sr. Manager - Network Security Engineering & Ops (Remote)

    Donnelley Financial, LLC • Rockville, MD, United States
    [filters.remote]
    [job_card.full_time]
    Join a dynamic team at the pulse of global markets, where we deliver innovative software and service solutions for essential financial reporting and capital markets transactions.At DFIN, we are a v...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Remote Information Security Engineer

    Remote Information Security Engineer

    InsightSoftware • Washington, DC, United States
    [filters.remote]
    [job_card.full_time]
    A global software solutions provider is seeking a skilled Information Security Engineer to work remotely in the US.The role involves implementing security measures for information assets, supportin...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    ACAS Cybersecurity Engineer : Vulnerability & Compliance

    ACAS Cybersecurity Engineer : Vulnerability & Compliance

    Booz Allen Hamilton • Washington, DC, United States
    [job_card.full_time]
    A leading consulting firm in Washington, DC is seeking an experienced Assured Compliance Assessment Solution Cybersecurity Engineer. The role involves deploying and maintaining the ACAS suite while ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Technology Vulnerability Management Engineer

    Technology Vulnerability Management Engineer

    Cooley LLP • Washington, DC, United States
    [job_card.full_time]
    Technology Vulnerability Management Engineer.Cooley is seeking a Technology Vulnerability Management Engineer to join the Security team. Cooley Technology embraces a culture of customer service exce...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Sepio Security Engineer

    Sepio Security Engineer

    Leidos Inc • Arlington, VA, United States
    [job_card.full_time]
    We are seeking a highly skilled and motivated Sepio Engineer to join our cybersecurity team.In this pivotal role, you will be responsible for designing, implementing, and maintaining security measu...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Network Security Engineer

    Network Security Engineer

    Office of The Chief Financial Officer • Northern Virginia, VA, United States
    [job_card.full_time]
    Government of the District of Columbia.Office of the Chief Financial Officer (OCFO).Network Security Engineer (INFOSEC).This position is located in the Office of the Chief Financial Officer (OCFO),...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Threat Detection Engineer

    Senior Threat Detection Engineer

    Capital One • Washington, DC, US
    [job_card.full_time] +1
    Senior Threat Detection Engineer The Threat Detection & Analytics team is seeking qualified professionals to join our ranks. This highly specialized team of skilled engineers serves as experts in cr...[show_more]
    [last_updated.last_updated_1_day] • [promoted]
    Senior Information Security Operations Manager

    Senior Information Security Operations Manager

    The American Institute of Architects • Washington, DC, United States
    [job_card.full_time]
    A professional association in Washington, DC is seeking a specialist for their Information Security Administration to manage security operations and enhance threat detection.The ideal candidate wil...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Systems Technician - Service

    Senior Systems Technician - Service

    Vector Security, Inc. • Columbia, MD, US
    [job_card.full_time]
    At Vector Security We Think Big, Do the Right Thing, and Make a Difference Every Day! If this is how you like to work, we’d like to invite you to join our team as a Senior Systems Technician ...[show_more]
    [last_updated.last_updated_30] • [promoted]